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(57) Abstract 

The present invention provides systems and methods for electronic commerce including secure transaction management and electnjnic 
rights protection. Electronic appliances such as computers employed in accordance with the present invcmion help to ensure that mformat.on 
is accessed and used only in authorized ways, and maintain the integrity, availability, and/or confidenti^ity of the mfonnation. Secure 
subsystems used with such electronic appliances provide a distributed virtual distribution cnvlroninem (VDE) that "^ay/"^°yf/^l^=!^";^ 
chain of handling and control, for example, to control and/or meter or otherwise monitor use of electronically stored or disscniinaied 
information. Such a virtual distribution environment may be used to protect rights of various participants m electronic commerce and other 
electronic or electronic- facilitated transactions. Secure distributed and other operating system environments and architectures, employing, tor 
example, secure semiconductor processing arrangements that may establish secure, protected environments at each node. These tcclmiques 
may be used to support an end-to-end electronic information distribution capability that may be used, for example, utilizing the elecnonic 
highway". 
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(discussed below) that are controUed by the VDE nodes of the 
sender and receiver. As a result, permission records 808 and key 
blocks 810 will frequently, in Hie preferred embodiment, be 
stored only on electronic appliances 600 of registered users (and 
5 may themselves be deUvered to the user as part of a 

registrationfmitialization process). In this instance, permission 
records 808 and key blocks 810 for each property can be 
encrypted with a private DES key that is stored only in the 
secure memoiy of an SPU 500, making Hie key blocks unusable 
10 on any other user's VDE node. Alternately, the key blocks 810 

can be encrypted with the end user's pubUc key, making those 
key blocks usable only to tiie SPU 500 that stores the 
corresponding private key (or other, acceptably secure, 
ciyption/security techniques can be employed). 



15 



20 



enci 



In the preferred embodiment, the one or more keys used to 
encrypt each permission record 808 or other management 
information record will be changed every time the record is 
updated (or after a certain one or more events). In this event, the 
updated record is re-encrypted with new one or more keys. 
Alternately, one or more of the keys used to encrypt and decrypt 
management information may be "time aged" keys that 
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automaticaUy become mvalid after a period of time. 
Combinations of time aged and other event triggered keys may 
also be desirable; for example keys may change after a certain 
number of accesses, and/or after a certain duration of time or 
5 absolute point in time. The techniques may also be used togeUxer 

for any givenkey or combination of keys. The preferred 
embodiment procedure for constructing time aged keys is a 
one-way convolution algorithm with input parameters including 
user and site information as well as a specified portion of tfxe real 
10 time value provided by the SPU RTC 528. Other techniques for 

time aging may also be used, including for example techniques 
that use only user or site information, absolute points in time, 
and/or duration of time related to a subset of activities related to 
using or decrypting VDE secured content or the use of the VDE 
15 system. 

VDE 100 supports many different types of "objects" 300 
having the logical object structure 800 shown in Figure 17. 
Objects may be classified in one sense based on whether the 
20 protection information is bound together with the protected 

information. For example, a container that is bound by its 
controKs) to a specific VDE node is called a "stationary object- 
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^beBuccessftiL In this example, matching Ib detennined by 
validity of decrypted output, not by direct comparison of keys. 

Key convolution as described above need not use both site 
• ID and time as a value. Some keys may be generated based on 
current reallime. other keys might be generated on site ID. and 
still ottxer keys might be generated based on both current real- 

time and site ID, 

Key convolution can be used to provide "time-aged" keys. 
Such "time-aged- keys provide an automatic mechanism for 
aUowing keys to expire and be replaced by "new- keys. They 
provide a way to give a user time-hmited rights to make time- 
liniited use of an object, or portions of an object, without 
requiring user re-registration but retaining significant control in 
the hands of the content provider or administrator. If secure 
database 610 is sufficiently secure, similar capabiUties can be 
accomplished by checking an expiration date/time associated 
with a key. but this requires using more storage space for each 
key or group of keys. 

In the preferred embodiment. PERCs 808 can include an 
expiration date and/or time after which access to the VDE- 
protected information they correspond to is no longer authorized. 
Alternatively or in addition, after a duration of time related to 
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incorporate time as a component, and may be replaced when 
e]q>ired. 

Traveling Object Shared Keys 

A traveling object shared key may be used to deciypt the 
private header of traveling objects 860. In the preferred 
embodiment, traveling objects contain permissions record 808 in 
their private headers. The permissions record 808 preferably 
contains the keys for the private body and the keys for the 
content that can be accessed as permitted by the permissions 
record 808. These shared keys may incorporate time as a 
component, and may be replaced when expired. 

Secnre Database Keys 

PPE 650 preferably generates these secure database keys 
and never exposes them outside of the PPE. They are site- 
specific in the preferred embodiment, and may be "aged" as 
described above. As described above, each time an updated 
record is written to secure database 610, a new key may be used 
and kept in a key list within the PPE. Periodically (and when the 
internal Ust has no more room), the PPE 650 may generate a new 
key to encrypt new or old records. A group of keys may be used 
instead of a single key, depending on the size of the secure 
• database 610. 
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auditors, some one or more who may have the responsibility to 
"pass along" audit packets to other auditors. In another 
embodiment, audit information may be passed, for example, to a 
clearinghouse, which may then redistribute all and/or 
appropriate subsets of said information (and/or some processed 
result) to one or more other parties, said redistribution emplo3ring 
VDE secure objects created by said clearinghouse. 

An important function of an auditor (receiver of audit 
information) is to pass administrative events back to a user VDE 
node in acknowledgement that audit information has been 
received and/or "recognized." In the preferred embodiment, the 
receipt and/or acceptance of audit information may be followed by 
two processes. The first event will cause the audit data at a VDE 
node which prepared an audit report to be deleted, or compressed 
into, or added to, one or more simunary values. The second 
event, or set of events, will "inform" the relevant security (for 
example, termination and/or other consequence) control 
information (for example, budgets) at said VDE node of the audit 
receipt, modify expiration dates, provide key updates, and/or etc. 
In most cases, these events will be sent immediately to a site 
after an audit trail is received. In some cases, this transmission 
may be delayed to, for example, first allow processing of the audit 
trail and/or payment by a user to an auditor or other party. 
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Hxanagement involving event driven VDE activities atbotlx1i.e 
intended audit information receiver and sender and employing 
both iixeir secure PPE650 and secure VDE communication 



techniques. 



lu the preferred embodiment, each time a user registers a 
new object with her own VDE node, and/or alternatively, with a 
remote clearinghouse and/or distributor VDE node, one or more 
permissions records are provided to, at least in part, govern the 
use of said object. The permissions records may be provided 
dynamically during a secure UDE registration process 
(employing the VDE installation secure subsystem), and/or may 
be provided following an initial registration and received at some 
subsequent time, e.g. through one or more separate secure VDE 
communications, including, for example, the receipt of a physical 
arrangement containing or otherwise carrying said information. 
At least one process related to the providing of the one or more 
permissions records to a user can trigger a metering event which 
results in audit information being created reflecting tiie user's 
VDE node's, clearinghouse's, and/or distiibutor's permissions 
records provision process. This metering process may not only 
record that one or more permissions records have been created. 
It may also record the VDE node name, user name, associated 
object identification information, time. date, and/or other 
identification information. Some or all of this information can 
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become part of audit information securely reported by a 
cleaiinghouBe or distributor, for example, to an auditing content 
creator and/or other content provider. This information can be 
reconciled by secure VDE appUcations software at a receiving 
auditoi'a site against a user's audit information passed through 
by said clearinghouse or distributor to said auditor. For each 
metered one or more permissions records (or set of records) that 
were created for a certain user (and/or VDE node) to manage use 
of certain one or more VDE objects) and/or to manage the 
creation of VDE object audit reports, it may be desirable that an 
auditor receive corresponding audit information incorporated into 
an, at least in part, encrypted audit report. This combination of 
metering of the creation of permissions records; secure, encrypted 
audit information reporting processes; secure VDE subsystem 
reconciliation of metering information reflecting the creation of 
registration and/or audit reporting permissions with received 
audit report detail; and one or more secure VDE installation 
expiration and/or other termination and/or other consequence 
processes; taken together significantly enhances the integrity of 
the VDE secure audit reporting process as a trusted, efficient, 
commercial environment. 
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example, a content user 112 generally can't change -rules and 
controls" specified by a distributor 106 that require the user to 
pay for content usage at a certain rate. -Rules and controls" may 
-persist" as they pass through a "chain of handling and control," 
5 and may be "inherited" as they are passed down from one VDE 

participant to the ne3Ct. 

Depending upon their needs, VDE participants can spediy 
that their "rules and controls" can be changed under conditions 

10 specified by the same or other "rules and controls " For example, 

-rules and controls" specified by the content creator 102 may 
permit the distributor 106 to "mark up" the usage price just as 
retail stores "mark up" the wholesale price of goods. Figure 2A 
shows an example in which certain "rules and controls" persist 

15 unchanged from content creator 102 to content user 112; other 

"rules and controls" are modified or deleted by distributor 106; 
and still other "rules and controls" are added by the distributor. 

"Rvdes and controls" can be used to protect the content 
20 user's privacy by limiting the information that is reported to 

other VDE participants. As one example, "rules and controls" 
can cause content usage information to be reported anonymously 
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iBforxnation. Perfonning this tagging "change- frequently (for 
example, eveiy time a given record is deciypted) prevents the 
substitution of "incorrect- information for "coirect" information, 
since said substitution will not cany information which will 
match the tagging information stored within the hardware SPE 
during subsequent rttrieval of the information. 

Another benefit of information tagging is the use of tags to 
help enforee and/or veriiy information and/or control mechanisms 
in force between two or more parties. If information is tagged by 
one party, and then passed to another party or parties, a tag can 
be used as an expected value associated with communications 
and/or transactions between the two parties regarding the tagged 
information. For example, if a tag is associated with a data 
element that is passed by Party A to Party B, Party B may 
require Party A to prove knowledge of the correct value of at least 
a portion of a tag before information related to. and/or part of. 
said data element is released by Party B to Party A, or vice versa. 
In another example, a tag may be used by Party A to verify that 
information sent by Party B is actually associated with, and/or 
part of, a tagged data element, or vice versa. 

EBtabUshing A Secure. Authenticated. Communication Channel 

From time to time, two parties (e.g., PPEs A and B), will 
need to establish a communication channel that is known by both 



638 



PCrAJS96»a303 

wo 96/27155 

parties to be secure from eavesdropping, secure from tampering, 
and to be in use solely by the two parties whose identifies are 
correctly known to each other. 

The following describes an example process for establishing 
such a channel and identifies how the requirements for security 
and authentication may be estabUshed and validated by the 
parties. The process is described in the abstract, in terms of the 
claims and belief each party must establish, and is not to be 
taken as a specification of any particular protocol. In particular, 
the individual sub-steps of each step are not required to be 
implemented using distinct operations; in practice, the 
establishment and validation of related proofs is often combined 
into a single operation. 

The sub-steps need not be performed in the order detailed 
below, except to the extent that the vahdity of a claim cannot be 
proven before the claim is made by the other party. The steps 
may involve additional communications between the two parties 
than are impUed by the enumerated sub-steps, as the 
-transmission- of information may itself be broken into sub-steps. 
Also, it is not necessary to protect the claims or the proofs from 
disclosure or modification during transmission. Knowledge of the 
.daims (including the specific communication proposals and 
acknowledgements thereof) is not considered protected 
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tafo^aticn. Any »oaification of a., proof. »U1 cau« the pn»f. 



to 



become invalid and will cause the process to fail. 



Standard public-key or secret-key ciyptograpbic 
techpiques can be used to implement this process (e.g.. X.509. 
AuthenticatedDiffie-Hellman.Kerberos). "mepreferred 
embodiment uses the three-way X.509 public key protocol steps. 

» 

The following may be the first two steps in the example 

process: 

A. {precursor step): Establish means of creating 

validatable claims by A 

B. (precursor step): Establish means of creating 

validatable claims by B 

These two steps ensure that each party has a means of 
„.aking claims that canbe validated by the other party, for 
instance, by using a public key signat^ scheme in which both 
paxties maintain a private key and make available a pubUc key 

that itself is authenticated by the digital signature of a 

certification authority. 

The next steps may be: 

A fprfTPOffff^ step): 

1 Determine B's identity 
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2. Acquire means of validating claims made by B 

3. Create a unique identity for this specific proposed 
comm'umcatioxi 

4. Create a communication proposal identifying ihe 
parties and the specific communication 

5. Create validatableproofofA's identity and the 
origin of the communication proposal 

6. Deliver communication proposal and associated 
proof to B. 

These steps establish the identity of the correspondent 
pariyBandproposesacommunication. Because establishment 
of the communication vnll require validation of claims made by B, 
a means must be provided for A to vaHdate such claims. Because 
the establishment of the communication must be unique to a 
specific requirement by A for communication, this communication 
proposal and all associated traffic must be unambiguously 
distinguishable from all other such traffic. Because B must 
validate the proposal as a legitimate proposal from A, a proof 
must be provided that the proposal is valid. 
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The next steps may be as follows: 

(PirynnwIf^i^rfiTP""* 

1. Extract A's identity from the commumcatioii 

proposal 

2. Acquire means of vaHdating daims made by A 

3. Validate A's claim of identity and communication 
proposal origin 

4. Determine the unique identification of the 
communication proposal 

5. Determine that the communication proposal does not 
duplicate an earlier proposal 

6. Create an acknowledgement identifying the specific 
communication proposal 

7 Create validatable proof of B's identity and the 

origin of the acknowledgement 
8. DeUver the acknowledgement and associated proof to 

A. 

These steps establish that party B has received A's 
communication proposal and is prepared to act on it. Because B 
must validate the proposal, B must first determine its origin and 
validate its authenticity. B must ensure that its response is 
associated with a specific proposal, and that the proposal is not a 
replay. If B accepts the proposal, it mnst prove both B's own 
identity and that B has received a specific proposal. 
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The next steps may be: 

1. Validate B's claim acknowledgement of A's specific 
proposal 

2. Extract tHe identity of the specific communicatioB 
proposal from tlxe acknowledgement 

3. Determine that the acknowledgement is associated 
with an outstanding communication proposal 

4. Create unique session key to be used for the 
proposed communication 

5. Create proof of session key's creation by A 
Create proof of session key's association with the 
specific communication proposal 
Create proof of receipt of B's acknowledgement 
Protect the session key from disclosure in 



6. 



7. 
8. 



10. 



transmission 

Protect the session key from modification in 
transmission 

DeUver protected session key and all proofs to B. 



These steps allows A to specify a session key to be 
associated with all further traffic related to A's specific 
communication proposal. A must create the key. prove that A 
.created it. and prove that it is associated with the specific 
proposed communication. In addition, A must prove that the 
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session key is generated in response to B's acknowledgement of 
the proposal. The session key must be protected from disclosure 
of modification to ensure that an attacker cannot substitute a 
different value. 

TransportabiUty of VDE Installation. Between PPEs 650 

In a preferred embodiment, VDE objects 300 and other 
secure information may if appropriate, be transported from one 
PPE 650 to another securely using the various keys outlined 
above. VDE 100 uses redistribution of VDE administrative 
information to exchange ownership of VDE object 300, and to 
aUow the portability of objects between electronic appliances 600. 

The permissions record 808 of VDE objects 300 contains 
rights information that may be used to determine whether an 
object can be redistributed in whole, in part, or at all. If a VDE 
object 300 can be redistributed, then electronic apphance 600 
normally must have B^^udget" and/or other pennissioning that 
allows it to redistribute the object. For example, an electronic 
apphance 600 authorized to redistribute an object may create an 
administrative object containing a budget or rights less than or 
equal to the budget or rights that it owns. Some administrative 
objects may be sent to other PPEs 650. A PPE 650 that receives 
one of the administrative objects may have the abihty to use at 
least a portion of the budgets, or rights, to related objects. 
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desire to acquire a new VDE object 300 will provide an incentive 
for users to update their PPEs 650 at regular time intervals. 

Finally, the end-to-end nature of VDE applications, in 
which content 108 flows in one direction, generating reports and 
bills 118 in the other, mak^ss it possible to perform 'T>ack-end- 
consistency checks. Such checks, performed in clearinghouses 
116, can detect patterns of use that may or do indicate fraud (e.g., 
excessive acquisition of protected content without any 
corresponding payment, usage records without corresponding 
billing records). The fine grain of usage reporting and the ready 
availability of usage records and reports in electronic form 
enables sophisticated fraud detection mechanisms to be built so 
that fraud-related costs can be kept to an acceptable level. 

PPE Initialization 

Each PPE 650 needs to be initialized before it can be used. 
Initialization may occur at the manufacturer site, after the PPE 
650 has been placed out in the field, or both. The manufacturing 
process for PPE 650 typically involves embedding within the PPE 
sufficient software that will allow the device to be more 
completely initialized at a later time. This manufacturing 
process may include, for example, testing the bootstrap loader 
and chaUenge-response software permanently stored wthin PPE 
650. and loading the PPE's unique ID. These steps provide a 
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• a certain flat rate fee should apply to opening the 
periodical regardless of the number of articles 
opened, and/or 

• a record should be maintained of every 
advertisement that is viewed by a user. 

If content is maintained in a known and/or identifiable format, 
such a template may be used during initial construction of a 
container without author 3306A's intervention to identify any 
xnap tables that may be required to support such recording and 
billing actions. If such a VDE template is unavailable to author 
3306A. she may choose to indicate that the container submitted 
should be reconstructed (e.g. augmented) by the repository to 
include the VDE control information specified in a certain 
template or class of templates. If the fonnat of the content is 
known and/or identifiable by the repository, the repository may 
be able to reconstruct (or "complete") such a container 
automatically. 

One factor in a potentially ongoing financial relationship 
between the repository and author 3306A may relate to usage of 
submitted content by end users 3310. For example, author 
3306A may negotiate an arrangement with the repository 
wherein the repository is authorized to keep 20% of the total 
revenues generated from end users 3310 in exchange for 
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maintaining the repository services (e.g. making content 
available to end users 3310, providing electronic credit, 
performing billing activities, collecting fees, etc.) A financial 
relationsHp may be recorded in control structures in Qexible and 
configurable ways. For example, the financial relationship 
described above could be created in a VDE container and/or 
installation control structure devised by author 3306A to reflect 
author 3306A*s financial requirements and the need for a 20% 
split in revenue with the repository wherein all billing activities 
related to usage of submitted content could be processed by the 
repositoiy. and control structures representing reciprocal 
methods associated with various component assemblies required 
for use of author 3306A'8 submitted content could be used to 
calculate the 20% of revenues. Alternatively, the repository may 
independently and securely add and/or modify control structures 
originating fi-om author 3306A in order to reflect an increase in 
price. Under some circumstances, author 3306A may not be 
directly involved (or have any knowledge of) the actual price that 
the repository charges for usage activities, and may concern 
herself only with the amount of revenue and character of usage 
analysis information that she requires for her own purposes, 
which she specifies in VDE control information which governs the 
use, and consequences of use, of VDE controlled content. 
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Another aspect of the relationship between authors and 
the repository may involve the character of transaction recording 
requirements associated with delivery of VDE controlled content 
and receipt of VDE controlled content usage audit information. 
Forexample, author 3306A may require that the repository make 
a record of each user that receives a copy of content from the 
repository. Author 3306A may further require collection of 
information regarding the circumstances of delivery of content to 
such users (e.g. time. date, etc.) In addition, the repository may 
elect to perform such transactions for use internally (e.g. to 
determine patterns of usage to optimize systems, detect fraud. 



etc.) 



In addition to recording information regarding delivery of 
such VDE controlled content, author 3306A may have required or 
requested the repository to perform certain VDE container 
related processes. For example, author 3306A may want 
differing abstract and/or other descriptive information delivered 
to different classes of users. In addition, author 3306A may wish 
to deliver promotional materials in the same container as 
submitted content depending on. for example, the character of 
usage exhibited by a particular user (e.g. whether the user has 
received content from author 3306A. whether the user is a 
gular subscriber to author 3306A's materials, and/or other 
patterns that may be relevant to author 3306A and/or the end 
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validate the lookup to Uxe rights record header 476. and a check 
value field 474(6). 

Bights record header 476 in the preferred embodiment may 

u-^ fioW 476( 1). a right ID field 476(2), a 
include site record number field 47bu;, a ngix 

• - ♦ua "ri^.Ttt" riehts record 476(2), a field 
field 476(3) referencmg the next ngiii.!.«i- 

476(4) referencing a first set of user choice records 478(1), a tag 
476(5) to allow vaHdation with URT header tag 474(5), a tag 
476(6) to allow vahdation with a user choice record tag 478(6), 
and a check value field 476(7). Right ID field 476(2) may. for 
example, specift. the type of right conveyed by the rights record 
476(e.g.. right to use. right to distribute, right to read, right to 
audit, etc.). 

The one or more user choice records 478 referenced by 
rights record header 476 sets forth the user choices 
corresponding to access and/or use of the corresponding VDE 
object 300. There will typically be a rights record 476 for each 
right authorized to the corresponding user or user group. These 
rights govern use of the VDE object 300 by that user or user 
group. For instance, the user may have an "access" right, and an 
"extraction" right, but not a "copyright. Other rights controlled 
by rights record 476 (which is derived from PERC 808 using a 
REGISTER method in the preferred embodiment) include 
' distribution rights, audit rights, and pricing rights. When an 
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the same sense SB tl.e global certification keys 2811. 2813, and 
2814, or they may be restricted to use within a defined group of 
VDE instances. 

To perform this installation, the installer retrieves the 
destination site's identity ceridficate{s) 2823, and fi-om that 
extracts the site public key(s) 2815. These key(s) may be used in 



an 



encryption process 2841 to protect the keys being installed. 
The key(s) being installed are then transmitted inside the 
destination site's PPE 650. Inside the PPE 650, the decryption 
process 2842 may use the site private key(s) 2816 to decrypt the 
transmission. The PPE 650 then stores the installed or updated 
keys in its key storage 2802. 

Object-Spedfic Key Use 

Figures 66 and 67 illustrate the use of keys in protecting 
data and control information associated with VDE objects 300. 

Figure 66 shows use of a stationary content object 850 
whose controlinformation is derived from an administrative 
object 870. The objects may be received by the PPE 650 (e.g., by 
retrieval from an object repository 728 over a network or 
retrieved from local storage). The administrative object 
decryption process 2843 may use the private header key(s) 2815 
to decrypt the administrative object 870, thus retrieving the 
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PERC 808 governing access to tiie content object 850. The 
private body key(s) 810 may then be extracted from the PERC 
808 and used by the content decryption process 2845 to make the 
content available outside the PPE 650. In addition, the database 
key(5) 2817 may be used by the encryption process 2844 to 
prepare the PERC for storage outside the PPE 650 in the secure 
database 610. In subsequent access to the content object 850. the 
PERC 808 may be retrieved from the secure database 610. 
decrypted with database key(8) 2817. and used directly, rather 
than being extracted from administrative object 870. 

Figure 67 shows the similar process involving a traveling 
object 860. The principal distinction between Figures 66 and 67 
is that the PERC 808 is stored directly vdthin the traveling object 
860. and therefore may be used immediately after the decryption 
process 2843 to provide a private header key(s) 2831. This 
private header key 2831is used to process content within the 
traveling object 860. 

Secret-Key Variations 

Figures 64 through 67 illustrate the preferred pubUc-key 
embodiment, but may also be used to help understand the secret- 
key versions. In secret-key embodiments, the certification 
.process and the public key encryptions/decryptions are replaced 
with private-key encryptions, and the public key/private-key 
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FIG. 67 TRAVELING OBJECT DECRYPTION 
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Cryptographic Sealing 

Sealing is used to protect the integrily of information when 
it may be subjected to modifications outside the control of the 
PPE 650, either accidentally or as an attack on the VDE security. 
Two specific appUcations may be the computation of check values 
for database records andth.. protection of data blocks that are 
swapped out of an SPE 500. 

There are two types of seahng: keyless sealing, also known 
as cryptographic hashing, and keyed sealing. Both employ a 
cryptographically strong hash fonction, such as MD5 or SHA. 
Such a function takes an input of arbitrary size and yields a 
fixed-size hash, or "digest.- The digest has the property that it is 
ixrfeasible to compute two inputs that yield the same digest, and 
infeasible to compute one input that yields a specific digest value, 
where "infeasible" is with reference to a work factor based on the 
size of the digest value in bits. If. for example, a 256-bit hash 
function is to be called strong, it must require approximately on 
average 10^38 (2M28) trials before a duplicated or specified 
digest value is likely to be produced. 

Keyless seals may be employed as check values in database 
records (e.g.. in PERC 808) and similar appUcations. A keyless 
seal may be computed based on the content of the body of the 
record, and the seal stored with the rest of the record. The 
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combination of seal and record may be encrypted to protect it in 
storage. If someone modifies the encrypted record without 
knowing the encryption key (either in the part representing the 
data or the part representing Ihe seal), the decrypted content will 
be different, and the decrypted check value wiU not match the 
digest computed from the record's data. Even though the hash 
algorithm is known, it is not feasible to modify both the record's 
data and its seal to correspond because both are encrypted. 

Keyed seals may be employed as protection for data stored 
outside a protected environment without encryption, or as a 
validity proof between two protected environments. A keyed seal 
is computed similarly to a keyless seal, except that a secret initial 
value is logically prefixed to the data being sealed. The digest 
value thus depends both on the secret and the data, and it is 
infeasible to compute a new seal to correspond to modified data 
even though the data itself is visible to an attacker. A keyed seal 
may protect data in storage with a single secret value, or may 
protect data in transit between two environments tiiat share a 
single secret value. 

The choice of keys or keyless seals depends on the nature 
of the data being protected and whether it is additionally 
protected by encryption. 
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Arrow 104 ahows the content careator 102 Bending the 
^es and controls" associated with the content to a VDE dfihte 
difitribntor 106 rdistributoO over an flfrtrOTllr highw a y 108 (or 
by some other path such as an optical disk sent by a deUvery 
service such as U. S. mail). The content can be distributed over 
the same or different path used to send the "rules and controls » 
The distributor 106 generates her own "rules and controls" that 
relate to uaflgfi of the content. The usage-related "rules and 
controls" may. for example, specify what a user can and can't do 
with the content and how much it costs to use the content. These 
usage-related "rules and controls" must be consistent with the 
-rules and controls" specified by content creator 102. 

Arrow 110 shows the distributor 106 distrib^ti a g rights to 
> use the content by sending the content's "rules and controls" to a 

.nT,t.Pr,t user 112 such as a consumer. The content user 112 uses 
the content in accordance with the usage-related "rules and 
controls." 



0 



In this Figure 2 example, information relating to content 
use is, as shown by arrow 114, iBIiialed to a miaiidal 
.io«r.r,.rV,nuse 116. Based on this "reporting." the financial 
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clearinghouse 116 may generate a hiU and send it to the content 
user 112 over a ILrrportl f.Tl(1 pnYmente" network 118. Arrow 120 
Bhows the content user 112 providing puancois for content usage 
to Ae financial clearinghouse 116. Based on the reports and 
5 payments it receives, the financial clearinghouse 116 may 

provide reports and/pr payments to the distributor 106. The 
distributor 106 may, as shown by arrow 122, provide reports 
and/or payments to the content creator 102. The clearinghouse 
116 may provide reports and payments directiy to the creator 
10 102. Reporting and/or payments may be done differently. For 

example, clearinghouse 116 may directly or through an agent, 
provide reports and/or payments to each of VDE content creators 
102, and rights distributor 106, as well as reports to content user 
112. 



15 



The distributor 106 and the content creator 102 may be the 
same person, or they may be different people. For example, a 
musical performing group may act as both content creator 102 
and distributor 106 by creating and distributing its own musical 
20 recordings. As another example, a publishing house may act as a 

distributor 106 to distribute rights to use works created by an 
author content creator 102. Content creators 102 may use a 
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Updating Secure Database 610 

Figure 35 show an example of a process 1150 which can be 
used by a clearinghouse. VDE adniinistrator or other VDE 
participant to update the secure database 610 maintained by an 
end user's electronic appHance 600. For example, the process 
1500 shown in Figure 35 might be used to coUect "audit trail- 
records within secure database 610 and/or provide new budgets 
and permissions (e.g.. PERCs 808) in response to an end user's 
request. 

Typically, the end user's electronic appUance 600 may 
imtiate communications witii a clearinghouse (Block 1152). This 
contact may, for example, be established automatically or in 
response to a user command. It may be initiated across the 
electronic highway 108. or across other communications networks 
such as a LAN, WAN. two-way cable or using portable media 
exchange between electronic appUances. The process of 
exchanging administrative information need not occur in a single 
-on line" session, but could instead occur over time based on a 
number of different one-way and/or two-way communications 
over the same or different communications means. However, the 
process 1150 shown in Figure 35 is a specific example where the 
end user s electronic appUance 600 and the other VDE 
participant (e.g.. a clearinghouse) establish a two-way real-time 
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interactive comxnunicationB exchange across a telephone line, 
network, electronic highway 108, etc. 

The end user's electronic appliance 600 generally contacts 
a particular VDE administrator or clearinghouse . The identity of 

the particular clearinghouse is based on the VDE object 300 the 
user wishes to access or has already accessed. For example, 
suppose the user has already accessed a particular VDE object 
300 and has run out of budget for further access. The user could 
issue a request which will cause her electronic appUance 600 to 
automatically contact the VDE administrator, distributor and/or 
financial clearinghouse that has responsibility for that particular 
object. The identity of the appropriate VDE participants to 
contact is provided in the example by information within UDEs 
1200. MDEs 1202. the Object Registration Table 460 and/or 
Subject Table 462, for example. Electronic appliance 600 may 
have to contact multiple VDE participants (e.g.. to distribute 
audit records to one participant, obtain additional budgets or 
other permissions from another participant, etc.). The contact 
1152 may in one example be scheduled in accordance with the 
Figure 27 Shipping Table 444 and the Figure 29 Administrative 
Event Log 442. 

Once contact is established, the end user's electronic 
apphance and the clearinghouse typically authenticate one 
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another and agree on a session key to use for the real-time 
information exchange (Block 1154). Once a secure connection is 
established, the end user's electronic appliance may determine 
(e.g., based on Shipping Table 444) whether it has any 
administrative objects) containing audit information that it is 
supposed to send to the clearinghouse (decision Block 1156). 
Audit infonnation pertaining to several VDE objects 300 may be 
placed within the same administrative object for transmission, or 
different administrative objects may contain audit information 
about different objects. Assuming the end user's electronic 
appUance has at least one such administrative object to send to 
this particular clearinghouse ("yes" exit to decision Block 1156). 
the electronic appUance sends that administrative object to the 
clearinghouse via the now-established secure real-time 
communications (Block 1158). In one specific example, a single 
administrative object may be sent an administrative object 
containing audit information pertaining to multiple VDE objects, 
with the audit information for each different object compromising 
sparate "event" within the administrative object. 



a set 



The clearinghouse may receive the administrative object 
and process its contents to determine whether the contents are 
"vaHd" and "legitimate." For example, the clearinghouse may 
analyze the contained audit information to determine whether it 
indicates misuse of the applicable VDE object 300. The 
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dearii^l.<ms= may. a. a result of ttia an.ly«s. may g«.era« one 

„o« re,p=B»« actoWstrative object *at it tf»n se«U to 
U,e end user's electronic appUanc. 600 ffilock X160). -n^e end 

electronic appliance 600 may proces. event, that updaU 
its secure database 610 and/or SPU 500 contents based on a* 
administrative object received (Block. U62). For e^mple. if U.e 
audit information received by the clearinghouse is legitimate. 

U^en the dearinghouse may send an administrative object to the 
end -ser-s electronic appliance 600 requesting the electronic 
sppUance to delete and^or compress the audit informaUon .hat 
has been transferred. Alternatively or in addition, the 
dearin^ouse ma, re<r>est additional information from the end- 
user electronic appUance 600 at this stage (e.g., re«ansmission of 

certain information that was corrupted during the initial 
transmission, transmission of additional information not earlier 
transmitted, etc.,. If the clearinghouse detects misuse based on 
,h. received audit information, it may transmit an 
administrative object that revokes or othervnse modifies *e «>d 
Ws right to further access the assodaud VDE objects 300. 

The dearin^ouse may, in addition or alternatively, send 
an administrative object to the end user's electronic appliance 
600 that instructs the electronic appUance to display one or more 

messages i 



to the user. These messages may inform the user 
about certain conditions and/or they may request additional 
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HrformatioB from the user. For example, the message may 
instnict the end user to contact the clearinghouse directiy by 
telephone or otherwise to resolve an indicated problem, enter a 
pm. or it may instruct the user to contact a new service company 
to re-register the associated VDE object. Alternatively, the 
message may tell the end user that she needs to acquire new 
usage permissions for the object, and may inform the user of cost, 
status and other associated information. 

During the same or dififerent communications exchange, 
the same or different clearinghouse may handle the end user's 
request for additional budget and/or permission pertaining to 
VDE object 300. For example, the end user's electronic appHance 
600 may (e.g., in response to a user input request to access a 
particular VDE object 300) send an administrative object to the 
clearinghouse requesting budgets and/or other permissions 
allowing access (Block 1164). As mentioned above, such requests 
may be transmitted in the form of one or more administrative 
objects, such as, for example, a single administrative object 
having multiple "events" associated with multiple requested 
budgets and/or other permissions for the same or different VDE 
objects 300. The clearinghouse may upon receipt of such a 
request, check the end user's credit, financial records, business 
agreements and/or audit histories to determine whether the 
requested budgets and/or permissions should be given. The 
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cle«ingho»»e mey, b«ed ou to analyi.. send on. or more 
r^^^e «totoi.trative olject. which ca^e the end 
electronic eppUanc. 600 to update if secure databaBe in 

^nae <Bl«=k 1166, 1168). This updating nught. for example, 
comprise repladng an e:cpir.d PERO SOB «ith a fresh one, 
„.odilying a PBRC to provide additional (or le«,er) rights, etc. 
Steps 1164-1168 may be repeated multiple times in the same or 
different communications session to provide tether update, to 
the end user's secure database 610. 

Figm-e 36 shor™ an example of how a new record or 
el^nent may be inserted into secure database 610. The load 
p^ces, 1070 shown in Figure 35 checks each data element or 
item as it is loaded to ensure that it has not been tampered with, 
replaced or substituted. In the process 1070 shown in Figure 35, 
the arst step that is petfonned is to check to see if the current 
user of electronic appliance 600 is authorized to insert the item 
into secure database 610 (block 1072). This test may involve, in 
the preferred embodiment, loading (or using already loaded) 
appropriate methods 1000 «od other data structure, such as 
UDEs 1200 into an SPE 503, which then authenticates user 
authoriration to make .he change to secure database 610 (block 
1074). If the user is approved as being authoiixed to meke the 
change to secure database 610, then SPE 503 may check the 
integrity of .he element to be added to the secure database by 
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1150 




FIG. 35 
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